Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/71403B04F7E511EEBC67981CC4F9AE02.roa
File: 71403B04F7E511EEBC67981CC4F9AE02.roa (raw, json)
Hash identifier: gx9z09oQ5hTA8YH4iSWgc7528eikGurKJ+1nJAQYPAQ=
Subject key identifier: 2E:E3:F8:E3:D2:A9:03:DC:EE:13:5E:58:EB:A8:F8:AC:05:1D:B4:C2
Certificate issuer: /CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8
Certificate serial: 4D
Authority key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/71403B04F7E511EEBC67981CC4F9AE02.roa
Signing time: Thu 05 Sep 2024 07:20:16 +0000
ROA not before: Thu 05 Sep 2024 07:20:16 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 7637
IP address blocks: 192.190.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77 (0x4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A469
Validity
Not Before: Sep 5 07:20:16 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d95baf-3291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:80:07:9c:94:6b:b9:d2:7d:83:64:b4:a1:03:
4d:50:dd:92:32:91:c3:74:09:72:63:4c:0f:9d:0c:
e6:0a:42:fa:13:96:06:4a:f8:a9:a7:ca:2d:8e:e0:
ec:62:45:fb:1a:93:98:01:f6:71:9d:3e:05:33:bb:
5d:99:84:bf:75:33:75:ee:ed:91:95:e3:d9:86:77:
12:2a:2c:fa:74:f7:c8:ce:aa:a0:ad:81:db:28:27:
38:e2:e3:d8:36:cd:2d:07:aa:c6:85:6e:00:d6:4c:
39:e2:05:c1:ef:ce:34:02:9f:a6:60:cb:79:05:16:
8c:ac:1d:c1:b3:19:8a:b8:3e:70:cb:29:b5:e2:66:
1a:15:ec:b5:8f:64:d6:2c:92:b3:35:bb:c9:08:b3:
dd:12:e2:89:d6:7e:fd:45:39:6a:70:19:9f:fc:c3:
d0:c3:c4:c7:ae:77:7c:79:db:b1:22:1e:8d:50:2b:
a1:a7:34:1e:f0:ba:79:91:f9:44:e8:c9:2a:dd:c7:
95:ed:03:64:48:e4:94:d6:3b:fd:fe:3c:e2:b0:c6:
2b:91:38:a0:8c:2c:0c:37:58:58:a5:d2:10:e2:86:
30:9a:0e:69:ab:cc:d8:a2:1c:46:a0:0f:e1:27:5d:
16:03:07:92:9f:bb:45:eb:89:38:9d:38:ff:2a:13:
bd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E3:F8:E3:D2:A9:03:DC:EE:13:5E:58:EB:A8:F8:AC:05:1D:B4:C2
X509v3 Authority Key Identifier:
keyid:BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/71403B04F7E511EEBC67981CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.190.180.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:74:71:75:31:61:6a:86:d8:ef:5e:34:d6:3d:2f:f0:c2:11:
8e:9a:89:d7:b8:4f:76:26:5c:0c:8e:89:dc:db:d8:cc:ff:ae:
ff:6d:ed:90:43:98:0a:31:37:f1:cb:bf:f8:96:b8:4d:3d:95:
56:aa:b2:9b:95:60:6e:c7:32:9a:5c:67:44:b0:20:0e:87:09:
a3:c0:eb:04:5d:d5:6b:05:05:01:b6:1f:cf:1c:01:07:37:d3:
91:c7:c1:fe:dd:a9:31:5c:d0:e8:77:a5:21:20:52:21:59:7c:
a6:5a:87:a9:24:82:6d:3a:8f:c5:6a:b8:68:8e:a0:f4:e1:e9:
b1:a5:82:c6:42:d0:b8:1d:a9:20:a4:65:e9:83:62:08:18:11:
56:1d:cf:3a:4a:dc:0b:ae:d9:1c:13:2e:22:19:91:62:12:af:
02:77:aa:95:8b:63:e2:b3:6e:b0:dc:71:fa:8e:a7:43:08:45:
52:dd:21:24:57:d3:53:f8:65:6c:47:d3:44:5f:0d:27:ac:53:
17:8b:0f:75:42:94:b9:f5:cf:f7:37:52:c6:20:d9:a0:60:f4:
d8:be:17:45:6b:66:6c:68:86:46:37:a0:09:df:3b:a7:36:83:
7c:11:e3:e4:49:04:54:cd:e5:81:84:9c:e1:51:87:08:b5:47:
4f:65:81:01
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4
QTQ2OTExMC8GA1UEBRMoQkVDMjgyNDg2RjM3RTMxNkYxN0I1MjBCNDU1Mjg3QkMz
MDdGODlFODAeFw0yNDA5MDUwNzIwMTZaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2ZDk1YmFmLTMyOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCpgAeclGu50n2DZLShA01Q3ZIykcN0CXJjTA+dDOYKQvoTlgZK+Kmnyi2O4Oxi
Rfsak5gB9nGdPgUzu12ZhL91M3Xu7ZGV49mGdxIqLPp098jOqqCtgdsoJzji49g2
zS0HqsaFbgDWTDniBcHvzjQCn6Zgy3kFFoysHcGzGYq4PnDLKbXiZhoV7LWPZNYs
krM1u8kIs90S4onWfv1FOWpwGZ/8w9DDxMeud3x527EiHo1QK6GnNB7wunmR+UTo
ySrdx5XtA2RI5JTWO/3+POKwxiuROKCMLAw3WFil0hDihjCaDmmrzNiiHEagD+En
XRYDB5Kfu0XriTidOP8qE70pAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULuP449Kp
A9zuE15Y66j4rAUdtMIwHwYDVR0jBBgwFoAUvsKCSG834xbxe1ILRVKHvDB/iegw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDY5L0Y1ODQzOEZFRjdF
MzExRUVCOUExMjkxQUM0RjlBRTAyL3ZzS0NTRzgzNHhieGUxSUxSVktIdkRCX2ll
Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvdnNLQ1NHODM0eGJ4ZTFJTFJWS0h2REJfaWVnLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
QTQ2OS9GNTg0MzhGRUY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi83MTQwM0IwNEY3
RTUxMUVFQkM2Nzk4MUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAMC+tDANBgkqhkiG9w0BAQsFAAOCAQEAXXRxdTFhaobY7140
1j0v8MIRjpqJ17hPdiZcDI6J3NvYzP+u/23tkEOYCjE38cu/+Ja4TT2VVqqym5Vg
bscymlxnRLAgDocJo8DrBF3VawUFAbYfzxwBBzfTkcfB/t2pMVzQ6HelISBSIVl8
plqHqSSCbTqPxWq4aI6g9OHpsaWCxkLQuB2pIKRl6YNiCBgRVh3POkrcC67ZHBMu
IhmRYhKvAneqlYtj4rNusNxx+o6nQwhFUt0hJFfTU/hlbEfTRF8NJ6xTF4sPdUKU
ufXP9zdSxiDZoGD02L4XRWtmbGiGRjegCd87pzaDfBHj5EkEVM3lgYSc4VGHCLVH
T2WBAQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 19:24:09 2025 by rpki-client